TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/master / . / library / md.c
blob: c95846aa04270c7bf29a8532479a1152a249a782 [file] [log] [blame]
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1/**
Gilles Peskine2091f3a2021-02-12 23:34:01 +0100[diff] [blame]2 * \file md.c
Paul Bakker9af723c2014-05-01 13:03:14 +0200[diff] [blame]3 *
Gilles Peskinee820c0a2023-08-03 17:45:20 +0200[diff] [blame]4 * \brief Generic message digest wrapper for Mbed TLS
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]5 *
6 * \author Adriaan de Jong <dejong@fox-it.com>
7 *
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]8 * Copyright The Mbed TLS Contributors
Dave Rodgman16799db2023-11-02 19:47:20 +0000[diff] [blame]9 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]10 */
11
Gilles Peskinedb09ef62020-06-03 01:43:33 +0200[diff] [blame]12#include "common.h"
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]13
Manuel Pégourié-Gonnard0d415212023-02-23 13:02:13 +0100[diff] [blame]14/*
15 * Availability of functions in this module is controlled by two
16 * feature macros:
17 * - MBEDTLS_MD_C enables the whole module;
18 * - MBEDTLS_MD_LIGHT enables only functions for hashing and accessing
19 * most hash metadata (everything except string names); is it
20 * automatically set whenever MBEDTLS_MD_C is defined.
21 *
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]22 * In this file, functions from MD_LIGHT are at the top, MD_C at the end.
23 *
Manuel Pégourié-Gonnard0d415212023-02-23 13:02:13 +0100[diff] [blame]24 * In the future we may want to change the contract of some functions
25 * (behaviour with NULL arguments) depending on whether MD_C is defined or
26 * only MD_LIGHT. Also, the exact scope of MD_LIGHT might vary.
27 *
28 * For these reasons, we're keeping MD_LIGHT internal for now.
29 */
Manuel Pégourié-Gonnardb9b630d2023-02-16 19:07:31 +0100[diff] [blame]30#if defined(MBEDTLS_MD_LIGHT)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]31
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]32#include "mbedtls/md.h"
Chris Jonesdaacb592021-03-09 17:03:29 +0000[diff] [blame]33#include "md_wrap.h"
Andres Amaya Garcia1f6301b2018-04-17 09:51:09 -0500[diff] [blame]34#include "mbedtls/platform_util.h"
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]35#include "mbedtls/error.h"
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]36
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]37#include "mbedtls/md5.h"
38#include "mbedtls/ripemd160.h"
39#include "mbedtls/sha1.h"
40#include "mbedtls/sha256.h"
41#include "mbedtls/sha512.h"
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]42#include "mbedtls/sha3.h"
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]43
Valerio Settib82fbf52024-04-30 06:53:51 +0200[diff] [blame]44#if defined(MBEDTLS_PSA_CRYPTO_CLIENT)
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]45#include <psa/crypto.h>
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]46#include "md_psa.h"
Manuel Pégourié-Gonnard2be8c632023-06-07 13:07:21 +0200[diff] [blame]47#include "psa_util_internal.h"
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]48#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]49
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]50#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnard9b146392023-03-09 15:56:14 +0100[diff] [blame]51#include "psa_crypto_core.h"
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]52#endif
53
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]54#include "mbedtls/platform.h"
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]55
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]56#include <string.h>
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]57
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]58#if defined(MBEDTLS_FS_IO)
59#include <stdio.h>
Paul Bakkeraf5c85f2011-04-18 03:47:52 +0000[diff] [blame]60#endif
61
Manuel Pégourié-Gonnardcf61a742023-05-25 09:11:41 +0200[diff] [blame]62/* See comment above MBEDTLS_MD_MAX_SIZE in md.h */
63#if defined(MBEDTLS_PSA_CRYPTO_C) && MBEDTLS_MD_MAX_SIZE < PSA_HASH_MAX_SIZE
64#error "Internal error: MBEDTLS_MD_MAX_SIZE < PSA_HASH_MAX_SIZE"
65#endif
66
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]67#if defined(MBEDTLS_MD_C)
68#define MD_INFO(type, out_size, block_size) type, out_size, block_size,
69#else
70#define MD_INFO(type, out_size, block_size) type, out_size,
71#endif
72
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]73#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]74static const mbedtls_md_info_t mbedtls_md5_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]75 MD_INFO(MBEDTLS_MD_MD5, 16, 64)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]76};
77#endif
78
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]79#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]80static const mbedtls_md_info_t mbedtls_ripemd160_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]81 MD_INFO(MBEDTLS_MD_RIPEMD160, 20, 64)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]82};
83#endif
84
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]85#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]86static const mbedtls_md_info_t mbedtls_sha1_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]87 MD_INFO(MBEDTLS_MD_SHA1, 20, 64)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]88};
89#endif
90
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]91#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]92static const mbedtls_md_info_t mbedtls_sha224_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]93 MD_INFO(MBEDTLS_MD_SHA224, 28, 64)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]94};
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]95#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]96
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]97#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]98static const mbedtls_md_info_t mbedtls_sha256_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]99 MD_INFO(MBEDTLS_MD_SHA256, 32, 64)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]100};
101#endif
102
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]103#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]104static const mbedtls_md_info_t mbedtls_sha384_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]105 MD_INFO(MBEDTLS_MD_SHA384, 48, 128)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]106};
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]107#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]108
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]109#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]110static const mbedtls_md_info_t mbedtls_sha512_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]111 MD_INFO(MBEDTLS_MD_SHA512, 64, 128)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]112};
113#endif
114
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]115#if defined(MBEDTLS_MD_CAN_SHA3_224)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]116static const mbedtls_md_info_t mbedtls_sha3_224_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]117 MD_INFO(MBEDTLS_MD_SHA3_224, 28, 144)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]118};
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]119#endif
120
121#if defined(MBEDTLS_MD_CAN_SHA3_256)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]122static const mbedtls_md_info_t mbedtls_sha3_256_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]123 MD_INFO(MBEDTLS_MD_SHA3_256, 32, 136)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]124};
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]125#endif
126
127#if defined(MBEDTLS_MD_CAN_SHA3_384)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]128static const mbedtls_md_info_t mbedtls_sha3_384_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]129 MD_INFO(MBEDTLS_MD_SHA3_384, 48, 104)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]130};
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]131#endif
132
133#if defined(MBEDTLS_MD_CAN_SHA3_512)
Manuel Pégourié-Gonnard9e97e6d2023-06-20 12:47:29 +0200[diff] [blame]134static const mbedtls_md_info_t mbedtls_sha3_512_info = {
Manuel Pégourié-Gonnarda36ef6b2023-06-21 12:02:07 +0200[diff] [blame]135 MD_INFO(MBEDTLS_MD_SHA3_512, 64, 72)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]136};
137#endif
138
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]139const mbedtls_md_info_t *mbedtls_md_info_from_type(mbedtls_md_type_t md_type)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]140{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]141 switch (md_type) {
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]142#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]143 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]144 return &mbedtls_md5_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]145#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]146#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]147 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]148 return &mbedtls_ripemd160_info;
Manuel Pégourié-Gonnarde4d47a62014-01-17 20:41:32 +0100[diff] [blame]149#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]150#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]151 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]152 return &mbedtls_sha1_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]153#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]154#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]155 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]156 return &mbedtls_sha224_info;
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]157#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]158#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]159 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]160 return &mbedtls_sha256_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]161#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]162#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]163 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]164 return &mbedtls_sha384_info;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]165#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]166#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]167 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]168 return &mbedtls_sha512_info;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]169#endif
Dave Rodgman6d4933e2023-06-08 16:03:54 +0100[diff] [blame]170#if defined(MBEDTLS_MD_CAN_SHA3_224)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]171 case MBEDTLS_MD_SHA3_224:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]172 return &mbedtls_sha3_224_info;
Dave Rodgman6d4933e2023-06-08 16:03:54 +0100[diff] [blame]173#endif
174#if defined(MBEDTLS_MD_CAN_SHA3_256)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]175 case MBEDTLS_MD_SHA3_256:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]176 return &mbedtls_sha3_256_info;
Dave Rodgman6d4933e2023-06-08 16:03:54 +0100[diff] [blame]177#endif
178#if defined(MBEDTLS_MD_CAN_SHA3_384)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]179 case MBEDTLS_MD_SHA3_384:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]180 return &mbedtls_sha3_384_info;
Dave Rodgman6d4933e2023-06-08 16:03:54 +0100[diff] [blame]181#endif
182#if defined(MBEDTLS_MD_CAN_SHA3_512)
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]183 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]184 return &mbedtls_sha3_512_info;
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]185#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]186 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]187 return NULL;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]188 }
189}
190
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]191#if defined(MBEDTLS_MD_SOME_PSA)
192static psa_algorithm_t psa_alg_of_md(const mbedtls_md_info_t *info)
Max Fillinger0bb38332021-12-28 16:32:00 +0100[diff] [blame]193{
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]194 switch (info->type) {
195#if defined(MBEDTLS_MD_MD5_VIA_PSA)
196 case MBEDTLS_MD_MD5:
197 return PSA_ALG_MD5;
198#endif
199#if defined(MBEDTLS_MD_RIPEMD160_VIA_PSA)
200 case MBEDTLS_MD_RIPEMD160:
201 return PSA_ALG_RIPEMD160;
202#endif
203#if defined(MBEDTLS_MD_SHA1_VIA_PSA)
204 case MBEDTLS_MD_SHA1:
205 return PSA_ALG_SHA_1;
206#endif
207#if defined(MBEDTLS_MD_SHA224_VIA_PSA)
208 case MBEDTLS_MD_SHA224:
209 return PSA_ALG_SHA_224;
210#endif
211#if defined(MBEDTLS_MD_SHA256_VIA_PSA)
212 case MBEDTLS_MD_SHA256:
213 return PSA_ALG_SHA_256;
214#endif
215#if defined(MBEDTLS_MD_SHA384_VIA_PSA)
216 case MBEDTLS_MD_SHA384:
217 return PSA_ALG_SHA_384;
218#endif
219#if defined(MBEDTLS_MD_SHA512_VIA_PSA)
220 case MBEDTLS_MD_SHA512:
221 return PSA_ALG_SHA_512;
222#endif
Dave Rodgman852b6c32023-07-05 19:47:08 +0100[diff] [blame]223#if defined(MBEDTLS_MD_SHA3_224_VIA_PSA)
224 case MBEDTLS_MD_SHA3_224:
225 return PSA_ALG_SHA3_224;
226#endif
227#if defined(MBEDTLS_MD_SHA3_256_VIA_PSA)
228 case MBEDTLS_MD_SHA3_256:
229 return PSA_ALG_SHA3_256;
230#endif
231#if defined(MBEDTLS_MD_SHA3_384_VIA_PSA)
232 case MBEDTLS_MD_SHA3_384:
233 return PSA_ALG_SHA3_384;
234#endif
235#if defined(MBEDTLS_MD_SHA3_512_VIA_PSA)
236 case MBEDTLS_MD_SHA3_512:
237 return PSA_ALG_SHA3_512;
238#endif
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]239 default:
240 return PSA_ALG_NONE;
241 }
242}
243
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]244static int md_can_use_psa(const mbedtls_md_info_t *info)
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]245{
Manuel Pégourié-Gonnard9b146392023-03-09 15:56:14 +0100[diff] [blame]246 psa_algorithm_t alg = psa_alg_of_md(info);
247 if (alg == PSA_ALG_NONE) {
248 return 0;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]249 }
Max Fillinger0bb38332021-12-28 16:32:00 +0100[diff] [blame]250
Manuel Pégourié-Gonnard9b146392023-03-09 15:56:14 +0100[diff] [blame]251 return psa_can_do_hash(alg);
Max Fillinger0bb38332021-12-28 16:32:00 +0100[diff] [blame]252}
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]253#endif /* MBEDTLS_MD_SOME_PSA */
254
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]255void mbedtls_md_init(mbedtls_md_context_t *ctx)
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]256{
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]257 /* Note: this sets engine (if present) to MBEDTLS_MD_ENGINE_LEGACY */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]258 memset(ctx, 0, sizeof(mbedtls_md_context_t));
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]259}
260
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]261void mbedtls_md_free(mbedtls_md_context_t *ctx)
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]262{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]263 if (ctx == NULL || ctx->md_info == NULL) {
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]264 return;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]265 }
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]266
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]267 if (ctx->md_ctx != NULL) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]268#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]269 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]270 psa_hash_abort(ctx->md_ctx);
271 } else
272#endif
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]273 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]274#if defined(MBEDTLS_MD5_C)
275 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]276 mbedtls_md5_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]277 break;
278#endif
279#if defined(MBEDTLS_RIPEMD160_C)
280 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]281 mbedtls_ripemd160_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]282 break;
283#endif
284#if defined(MBEDTLS_SHA1_C)
285 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]286 mbedtls_sha1_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]287 break;
288#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]289#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]290 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]291 mbedtls_sha256_free(ctx->md_ctx);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]292 break;
293#endif
294#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]295 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]296 mbedtls_sha256_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]297 break;
298#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]299#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]300 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]301 mbedtls_sha512_free(ctx->md_ctx);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]302 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]303#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]304#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]305 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]306 mbedtls_sha512_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]307 break;
308#endif
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]309#if defined(MBEDTLS_SHA3_C)
310 case MBEDTLS_MD_SHA3_224:
311 case MBEDTLS_MD_SHA3_256:
312 case MBEDTLS_MD_SHA3_384:
313 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]314 mbedtls_sha3_free(ctx->md_ctx);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]315 break;
316#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]317 default:
318 /* Shouldn't happen */
319 break;
320 }
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]321 mbedtls_free(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]322 }
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]323
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]324#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]325 if (ctx->hmac_ctx != NULL) {
Tom Cosgroveca8c61b2023-07-17 15:17:40 +0100[diff] [blame]326 mbedtls_zeroize_and_free(ctx->hmac_ctx,
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]327 2 * ctx->md_info->block_size);
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]328 }
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]329#endif
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]330
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]331 mbedtls_platform_zeroize(ctx, sizeof(mbedtls_md_context_t));
Paul Bakker84bbeb52014-07-01 14:53:22 +0200[diff] [blame]332}
333
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]334int mbedtls_md_clone(mbedtls_md_context_t *dst,
335 const mbedtls_md_context_t *src)
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]336{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]337 if (dst == NULL || dst->md_info == NULL ||
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]338 src == NULL || src->md_info == NULL ||
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]339 dst->md_info != src->md_info) {
340 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]341 }
342
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]343#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]344 if (src->engine != dst->engine) {
345 /* This can happen with src set to legacy because PSA wasn't ready
346 * yet, and dst to PSA because it became ready in the meantime.
347 * We currently don't support that case (we'd need to re-allocate
348 * md_ctx to the size of the appropriate MD context). */
349 return MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE;
350 }
351
352 if (src->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]353 psa_status_t status = psa_hash_clone(src->md_ctx, dst->md_ctx);
354 return mbedtls_md_error_from_psa(status);
355 }
356#endif
357
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]358 switch (src->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]359#if defined(MBEDTLS_MD5_C)
360 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]361 mbedtls_md5_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]362 break;
363#endif
364#if defined(MBEDTLS_RIPEMD160_C)
365 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]366 mbedtls_ripemd160_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]367 break;
368#endif
369#if defined(MBEDTLS_SHA1_C)
370 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]371 mbedtls_sha1_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]372 break;
373#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]374#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]375 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]376 mbedtls_sha256_clone(dst->md_ctx, src->md_ctx);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]377 break;
378#endif
379#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]380 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]381 mbedtls_sha256_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]382 break;
383#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]384#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]385 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]386 mbedtls_sha512_clone(dst->md_ctx, src->md_ctx);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]387 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]388#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]389#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]390 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]391 mbedtls_sha512_clone(dst->md_ctx, src->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]392 break;
393#endif
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]394#if defined(MBEDTLS_SHA3_C)
395 case MBEDTLS_MD_SHA3_224:
396 case MBEDTLS_MD_SHA3_256:
397 case MBEDTLS_MD_SHA3_384:
398 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]399 mbedtls_sha3_clone(dst->md_ctx, src->md_ctx);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]400 break;
401#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]402 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]403 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]404 }
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]405
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]406 return 0;
Manuel Pégourié-Gonnard052a6c92015-07-06 16:06:02 +0200[diff] [blame]407}
408
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]409#define ALLOC(type) \
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]410 do { \
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]411 ctx->md_ctx = mbedtls_calloc(1, sizeof(mbedtls_##type##_context)); \
412 if (ctx->md_ctx == NULL) \
413 return MBEDTLS_ERR_MD_ALLOC_FAILED; \
414 mbedtls_##type##_init(ctx->md_ctx); \
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]415 } \
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]416 while (0)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]417
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]418int mbedtls_md_setup(mbedtls_md_context_t *ctx, const mbedtls_md_info_t *md_info, int hmac)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]419{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]420#if defined(MBEDTLS_MD_C)
421 if (ctx == NULL) {
422 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
423 }
424#endif
425 if (md_info == NULL) {
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]426 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
427 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]428
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]429 ctx->md_info = md_info;
430 ctx->md_ctx = NULL;
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]431#if defined(MBEDTLS_MD_C)
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]432 ctx->hmac_ctx = NULL;
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]433#else
434 if (hmac != 0) {
435 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
436 }
437#endif
Gilles Peskined15c7402020-08-19 12:03:11 +0200[diff] [blame]438
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]439#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]440 if (md_can_use_psa(ctx->md_info)) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]441 ctx->md_ctx = mbedtls_calloc(1, sizeof(psa_hash_operation_t));
442 if (ctx->md_ctx == NULL) {
443 return MBEDTLS_ERR_MD_ALLOC_FAILED;
444 }
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]445 ctx->engine = MBEDTLS_MD_ENGINE_PSA;
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]446 } else
447#endif
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]448 switch (md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]449#if defined(MBEDTLS_MD5_C)
450 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]451 ALLOC(md5);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]452 break;
453#endif
454#if defined(MBEDTLS_RIPEMD160_C)
455 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]456 ALLOC(ripemd160);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]457 break;
458#endif
459#if defined(MBEDTLS_SHA1_C)
460 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]461 ALLOC(sha1);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]462 break;
463#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]464#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]465 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]466 ALLOC(sha256);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]467 break;
468#endif
469#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]470 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]471 ALLOC(sha256);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]472 break;
473#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]474#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]475 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]476 ALLOC(sha512);
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]477 break;
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]478#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]479#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]480 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]481 ALLOC(sha512);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]482 break;
483#endif
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]484#if defined(MBEDTLS_SHA3_C)
485 case MBEDTLS_MD_SHA3_224:
486 case MBEDTLS_MD_SHA3_256:
487 case MBEDTLS_MD_SHA3_384:
488 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]489 ALLOC(sha3);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]490 break;
491#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]492 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]493 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]494 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]495
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]496#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]497 if (hmac != 0) {
498 ctx->hmac_ctx = mbedtls_calloc(2, md_info->block_size);
499 if (ctx->hmac_ctx == NULL) {
500 mbedtls_md_free(ctx);
501 return MBEDTLS_ERR_MD_ALLOC_FAILED;
Manuel Pégourié-Gonnard4063ceb2015-03-25 16:08:53 +0100[diff] [blame]502 }
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]503 }
Manuel Pégourié-Gonnard39a376a2023-03-09 17:21:40 +0100[diff] [blame]504#endif
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]505
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]506 return 0;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]507}
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]508#undef ALLOC
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]509
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]510int mbedtls_md_starts(mbedtls_md_context_t *ctx)
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]511{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]512#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]513 if (ctx == NULL || ctx->md_info == NULL) {
514 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
515 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]516#endif
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]517
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]518#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]519 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
520 psa_algorithm_t alg = psa_alg_of_md(ctx->md_info);
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]521 psa_hash_abort(ctx->md_ctx);
522 psa_status_t status = psa_hash_setup(ctx->md_ctx, alg);
523 return mbedtls_md_error_from_psa(status);
524 }
525#endif
526
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]527 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]528#if defined(MBEDTLS_MD5_C)
529 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]530 return mbedtls_md5_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]531#endif
532#if defined(MBEDTLS_RIPEMD160_C)
533 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]534 return mbedtls_ripemd160_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]535#endif
536#if defined(MBEDTLS_SHA1_C)
537 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]538 return mbedtls_sha1_starts(ctx->md_ctx);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]539#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]540#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]541 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]542 return mbedtls_sha256_starts(ctx->md_ctx, 1);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]543#endif
544#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]545 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]546 return mbedtls_sha256_starts(ctx->md_ctx, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]547#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]548#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]549 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]550 return mbedtls_sha512_starts(ctx->md_ctx, 1);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]551#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]552#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]553 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]554 return mbedtls_sha512_starts(ctx->md_ctx, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]555#endif
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]556#if defined(MBEDTLS_SHA3_C)
557 case MBEDTLS_MD_SHA3_224:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]558 return mbedtls_sha3_starts(ctx->md_ctx, MBEDTLS_SHA3_224);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]559 case MBEDTLS_MD_SHA3_256:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]560 return mbedtls_sha3_starts(ctx->md_ctx, MBEDTLS_SHA3_256);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]561 case MBEDTLS_MD_SHA3_384:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]562 return mbedtls_sha3_starts(ctx->md_ctx, MBEDTLS_SHA3_384);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]563 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]564 return mbedtls_sha3_starts(ctx->md_ctx, MBEDTLS_SHA3_512);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]565#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]566 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]567 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]568 }
Paul Bakker562535d2011-01-20 16:42:01 +0000[diff] [blame]569}
570
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]571int mbedtls_md_update(mbedtls_md_context_t *ctx, const unsigned char *input, size_t ilen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]572{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]573#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]574 if (ctx == NULL || ctx->md_info == NULL) {
575 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
576 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]577#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]578
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]579#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]580 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]581 psa_status_t status = psa_hash_update(ctx->md_ctx, input, ilen);
582 return mbedtls_md_error_from_psa(status);
583 }
584#endif
585
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]586 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]587#if defined(MBEDTLS_MD5_C)
588 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]589 return mbedtls_md5_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]590#endif
591#if defined(MBEDTLS_RIPEMD160_C)
592 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]593 return mbedtls_ripemd160_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]594#endif
595#if defined(MBEDTLS_SHA1_C)
596 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]597 return mbedtls_sha1_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]598#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]599#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]600 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]601 return mbedtls_sha256_update(ctx->md_ctx, input, ilen);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]602#endif
603#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]604 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]605 return mbedtls_sha256_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]606#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]607#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]608 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]609 return mbedtls_sha512_update(ctx->md_ctx, input, ilen);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]610#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]611#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]612 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]613 return mbedtls_sha512_update(ctx->md_ctx, input, ilen);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]614#endif
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]615#if defined(MBEDTLS_SHA3_C)
616 case MBEDTLS_MD_SHA3_224:
617 case MBEDTLS_MD_SHA3_256:
618 case MBEDTLS_MD_SHA3_384:
619 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]620 return mbedtls_sha3_update(ctx->md_ctx, input, ilen);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]621#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]622 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]623 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]624 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]625}
626
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]627int mbedtls_md_finish(mbedtls_md_context_t *ctx, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]628{
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]629#if defined(MBEDTLS_MD_C)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]630 if (ctx == NULL || ctx->md_info == NULL) {
631 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
632 }
Thomas Daubney73cfde82023-05-30 15:34:28 +0100[diff] [blame]633#endif
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]634
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]635#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]636 if (ctx->engine == MBEDTLS_MD_ENGINE_PSA) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]637 size_t size = ctx->md_info->size;
638 psa_status_t status = psa_hash_finish(ctx->md_ctx,
639 output, size, &size);
640 return mbedtls_md_error_from_psa(status);
641 }
642#endif
643
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]644 switch (ctx->md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]645#if defined(MBEDTLS_MD5_C)
646 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]647 return mbedtls_md5_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]648#endif
649#if defined(MBEDTLS_RIPEMD160_C)
650 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]651 return mbedtls_ripemd160_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]652#endif
653#if defined(MBEDTLS_SHA1_C)
654 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]655 return mbedtls_sha1_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]656#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]657#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]658 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]659 return mbedtls_sha256_finish(ctx->md_ctx, output);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]660#endif
661#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]662 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]663 return mbedtls_sha256_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]664#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]665#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]666 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]667 return mbedtls_sha512_finish(ctx->md_ctx, output);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]668#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]669#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]670 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]671 return mbedtls_sha512_finish(ctx->md_ctx, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]672#endif
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]673#if defined(MBEDTLS_SHA3_C)
674 case MBEDTLS_MD_SHA3_224:
675 case MBEDTLS_MD_SHA3_256:
676 case MBEDTLS_MD_SHA3_384:
677 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]678 return mbedtls_sha3_finish(ctx->md_ctx, output, ctx->md_info->size);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]679#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]680 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]681 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]682 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]683}
684
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]685int mbedtls_md(const mbedtls_md_info_t *md_info, const unsigned char *input, size_t ilen,
686 unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]687{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]688 if (md_info == NULL) {
689 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
690 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]691
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]692#if defined(MBEDTLS_MD_SOME_PSA)
Manuel Pégourié-Gonnardf48b1f82023-03-14 10:50:52 +0100[diff] [blame]693 if (md_can_use_psa(md_info)) {
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]694 size_t size = md_info->size;
Manuel Pégourié-Gonnardd8ea37f2023-03-09 10:46:22 +0100[diff] [blame]695 psa_status_t status = psa_hash_compute(psa_alg_of_md(md_info),
Gilles Peskine12612e52022-10-22 20:07:28 +0200[diff] [blame]696 input, ilen,
697 output, size, &size);
698 return mbedtls_md_error_from_psa(status);
699 }
700#endif
701
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]702 switch (md_info->type) {
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]703#if defined(MBEDTLS_MD5_C)
704 case MBEDTLS_MD_MD5:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]705 return mbedtls_md5(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]706#endif
707#if defined(MBEDTLS_RIPEMD160_C)
708 case MBEDTLS_MD_RIPEMD160:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]709 return mbedtls_ripemd160(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]710#endif
711#if defined(MBEDTLS_SHA1_C)
712 case MBEDTLS_MD_SHA1:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]713 return mbedtls_sha1(input, ilen, output);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]714#endif
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]715#if defined(MBEDTLS_SHA224_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]716 case MBEDTLS_MD_SHA224:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]717 return mbedtls_sha256(input, ilen, output, 1);
Mateusz Starzyke3c48b42021-04-19 16:46:28 +0200[diff] [blame]718#endif
719#if defined(MBEDTLS_SHA256_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]720 case MBEDTLS_MD_SHA256:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]721 return mbedtls_sha256(input, ilen, output, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]722#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]723#if defined(MBEDTLS_SHA384_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]724 case MBEDTLS_MD_SHA384:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]725 return mbedtls_sha512(input, ilen, output, 1);
Manuel Pégourié-Gonnardd6020842019-07-17 16:28:21 +0200[diff] [blame]726#endif
Mateusz Starzyk3352a532021-04-06 14:28:22 +0200[diff] [blame]727#if defined(MBEDTLS_SHA512_C)
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]728 case MBEDTLS_MD_SHA512:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]729 return mbedtls_sha512(input, ilen, output, 0);
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]730#endif
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]731#if defined(MBEDTLS_SHA3_C)
732 case MBEDTLS_MD_SHA3_224:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]733 return mbedtls_sha3(MBEDTLS_SHA3_224, input, ilen, output, md_info->size);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]734 case MBEDTLS_MD_SHA3_256:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]735 return mbedtls_sha3(MBEDTLS_SHA3_256, input, ilen, output, md_info->size);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]736 case MBEDTLS_MD_SHA3_384:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]737 return mbedtls_sha3(MBEDTLS_SHA3_384, input, ilen, output, md_info->size);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]738 case MBEDTLS_MD_SHA3_512:
Pol Henarejosa6779282023-02-08 00:50:04 +0100[diff] [blame]739 return mbedtls_sha3(MBEDTLS_SHA3_512, input, ilen, output, md_info->size);
Pol Henarejos4712d4c2022-05-20 14:17:14 +0200[diff] [blame]740#endif
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]741 default:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]742 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
Gilles Peskine84867cf2019-07-19 15:46:03 +0200[diff] [blame]743 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]744}
745
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]746unsigned char mbedtls_md_get_size(const mbedtls_md_info_t *md_info)
747{
748 if (md_info == NULL) {
749 return 0;
750 }
751
752 return md_info->size;
753}
754
755mbedtls_md_type_t mbedtls_md_get_type(const mbedtls_md_info_t *md_info)
756{
757 if (md_info == NULL) {
758 return MBEDTLS_MD_NONE;
759 }
760
761 return md_info->type;
762}
763
Valerio Settib82fbf52024-04-30 06:53:51 +0200[diff] [blame]764#if defined(MBEDTLS_PSA_CRYPTO_CLIENT)
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]765int mbedtls_md_error_from_psa(psa_status_t status)
766{
Manuel Pégourié-Gonnardb3b54ab2023-03-29 12:36:34 +0200[diff] [blame]767 return PSA_TO_MBEDTLS_ERR_LIST(status, psa_to_md_errors,
768 psa_generic_status_to_mbedtls);
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]769}
Valerio Settib82fbf52024-04-30 06:53:51 +0200[diff] [blame]770#endif /* MBEDTLS_PSA_CRYPTO_CLIENT */
Manuel Pégourié-Gonnard36fb12e2023-03-28 11:33:23 +0200[diff] [blame]771
772
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]773/************************************************************************
774 * Functions above this separator are part of MBEDTLS_MD_LIGHT, *
775 * functions below are only available when MBEDTLS_MD_C is set. *
776 ************************************************************************/
777#if defined(MBEDTLS_MD_C)
778
779/*
780 * Reminder: update profiles in x509_crt.c when adding a new hash!
781 */
782static const int supported_digests[] = {
783
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]784#if defined(MBEDTLS_MD_CAN_SHA512)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]785 MBEDTLS_MD_SHA512,
786#endif
787
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]788#if defined(MBEDTLS_MD_CAN_SHA384)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]789 MBEDTLS_MD_SHA384,
790#endif
791
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]792#if defined(MBEDTLS_MD_CAN_SHA256)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]793 MBEDTLS_MD_SHA256,
794#endif
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]795#if defined(MBEDTLS_MD_CAN_SHA224)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]796 MBEDTLS_MD_SHA224,
797#endif
798
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]799#if defined(MBEDTLS_MD_CAN_SHA1)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]800 MBEDTLS_MD_SHA1,
801#endif
802
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]803#if defined(MBEDTLS_MD_CAN_RIPEMD160)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]804 MBEDTLS_MD_RIPEMD160,
805#endif
806
Gilles Peskine83d9e092022-10-22 18:32:43 +0200[diff] [blame]807#if defined(MBEDTLS_MD_CAN_MD5)
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]808 MBEDTLS_MD_MD5,
809#endif
810
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]811#if defined(MBEDTLS_MD_CAN_SHA3_224)
Pol Henarejosd06c6fc2023-05-05 16:01:18 +0200[diff] [blame]812 MBEDTLS_MD_SHA3_224,
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]813#endif
814
815#if defined(MBEDTLS_MD_CAN_SHA3_256)
Pol Henarejosd06c6fc2023-05-05 16:01:18 +0200[diff] [blame]816 MBEDTLS_MD_SHA3_256,
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]817#endif
818
819#if defined(MBEDTLS_MD_CAN_SHA3_384)
Pol Henarejosd06c6fc2023-05-05 16:01:18 +0200[diff] [blame]820 MBEDTLS_MD_SHA3_384,
Dave Rodgmanff45d442023-06-08 10:11:34 +0100[diff] [blame]821#endif
822
823#if defined(MBEDTLS_MD_CAN_SHA3_512)
Pol Henarejosd06c6fc2023-05-05 16:01:18 +0200[diff] [blame]824 MBEDTLS_MD_SHA3_512,
825#endif
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]826
827 MBEDTLS_MD_NONE
828};
829
830const int *mbedtls_md_list(void)
831{
832 return supported_digests;
833}
834
Manuel Pégourié-Gonnardee7a7582023-06-20 12:12:22 +0200[diff] [blame]835typedef struct {
836 const char *md_name;
837 mbedtls_md_type_t md_type;
838} md_name_entry;
839
840static const md_name_entry md_names[] = {
841#if defined(MBEDTLS_MD_CAN_MD5)
842 { "MD5", MBEDTLS_MD_MD5 },
843#endif
844#if defined(MBEDTLS_MD_CAN_RIPEMD160)
845 { "RIPEMD160", MBEDTLS_MD_RIPEMD160 },
846#endif
847#if defined(MBEDTLS_MD_CAN_SHA1)
848 { "SHA1", MBEDTLS_MD_SHA1 },
849 { "SHA", MBEDTLS_MD_SHA1 }, // compatibility fallback
850#endif
851#if defined(MBEDTLS_MD_CAN_SHA224)
852 { "SHA224", MBEDTLS_MD_SHA224 },
853#endif
854#if defined(MBEDTLS_MD_CAN_SHA256)
855 { "SHA256", MBEDTLS_MD_SHA256 },
856#endif
857#if defined(MBEDTLS_MD_CAN_SHA384)
858 { "SHA384", MBEDTLS_MD_SHA384 },
859#endif
860#if defined(MBEDTLS_MD_CAN_SHA512)
861 { "SHA512", MBEDTLS_MD_SHA512 },
862#endif
863#if defined(MBEDTLS_MD_CAN_SHA3_224)
864 { "SHA3-224", MBEDTLS_MD_SHA3_224 },
865#endif
866#if defined(MBEDTLS_MD_CAN_SHA3_256)
867 { "SHA3-256", MBEDTLS_MD_SHA3_256 },
868#endif
869#if defined(MBEDTLS_MD_CAN_SHA3_384)
870 { "SHA3-384", MBEDTLS_MD_SHA3_384 },
871#endif
872#if defined(MBEDTLS_MD_CAN_SHA3_512)
873 { "SHA3-512", MBEDTLS_MD_SHA3_512 },
874#endif
875 { NULL, MBEDTLS_MD_NONE },
876};
877
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]878const mbedtls_md_info_t *mbedtls_md_info_from_string(const char *md_name)
879{
880 if (NULL == md_name) {
881 return NULL;
882 }
883
Manuel Pégourié-Gonnardee7a7582023-06-20 12:12:22 +0200[diff] [blame]884 const md_name_entry *entry = md_names;
885 while (entry->md_name != NULL &&
886 strcmp(entry->md_name, md_name) != 0) {
887 ++entry;
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]888 }
Manuel Pégourié-Gonnardee7a7582023-06-20 12:12:22 +0200[diff] [blame]889
890 return mbedtls_md_info_from_type(entry->md_type);
891}
892
893const char *mbedtls_md_get_name(const mbedtls_md_info_t *md_info)
894{
895 if (md_info == NULL) {
896 return NULL;
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]897 }
Manuel Pégourié-Gonnardee7a7582023-06-20 12:12:22 +0200[diff] [blame]898
899 const md_name_entry *entry = md_names;
900 while (entry->md_type != MBEDTLS_MD_NONE &&
901 entry->md_type != md_info->type) {
902 ++entry;
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]903 }
Manuel Pégourié-Gonnardee7a7582023-06-20 12:12:22 +0200[diff] [blame]904
905 return entry->md_name;
Manuel Pégourié-Gonnard1e57abd2023-02-23 20:45:26 +0100[diff] [blame]906}
907
908const mbedtls_md_info_t *mbedtls_md_info_from_ctx(
909 const mbedtls_md_context_t *ctx)
910{
911 if (ctx == NULL) {
912 return NULL;
913 }
914
915 return ctx->MBEDTLS_PRIVATE(md_info);
916}
917
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]918#if defined(MBEDTLS_FS_IO)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]919int mbedtls_md_file(const mbedtls_md_info_t *md_info, const char *path, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]920{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]921 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]922 FILE *f;
923 size_t n;
924 mbedtls_md_context_t ctx;
925 unsigned char buf[1024];
Paul Bakker9c021ad2011-06-09 15:55:11 +0000[diff] [blame]926
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]927 if (md_info == NULL) {
928 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
929 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]930
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]931 if ((f = fopen(path, "rb")) == NULL) {
932 return MBEDTLS_ERR_MD_FILE_IO_ERROR;
933 }
Manuel Pégourié-Gonnardbcc03082015-06-24 00:09:29 +0200[diff] [blame]934
Gilles Peskineda0913b2022-06-30 17:03:40 +0200[diff] [blame]935 /* Ensure no stdio buffering of secrets, as such buffers cannot be wiped. */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]936 mbedtls_setbuf(f, NULL);
Gilles Peskineda0913b2022-06-30 17:03:40 +0200[diff] [blame]937
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]938 mbedtls_md_init(&ctx);
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]939
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]940 if ((ret = mbedtls_md_setup(&ctx, md_info, 0)) != 0) {
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]941 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]942 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]943
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]944 if ((ret = mbedtls_md_starts(&ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]945 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]946 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]947
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]948 while ((n = fread(buf, 1, sizeof(buf), f)) > 0) {
949 if ((ret = mbedtls_md_update(&ctx, buf, n)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]950 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]951 }
952 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]953
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]954 if (ferror(f) != 0) {
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]955 ret = MBEDTLS_ERR_MD_FILE_IO_ERROR;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]956 } else {
957 ret = mbedtls_md_finish(&ctx, output);
958 }
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]959
960cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]961 mbedtls_platform_zeroize(buf, sizeof(buf));
962 fclose(f);
963 mbedtls_md_free(&ctx);
Paul Bakker9c021ad2011-06-09 15:55:11 +0000[diff] [blame]964
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]965 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]966}
Manuel Pégourié-Gonnardbfffa902015-05-28 14:44:00 +0200[diff] [blame]967#endif /* MBEDTLS_FS_IO */
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]968
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]969int mbedtls_md_hmac_starts(mbedtls_md_context_t *ctx, const unsigned char *key, size_t keylen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]970{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]971 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]972 unsigned char sum[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]973 unsigned char *ipad, *opad;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]974
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]975 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
976 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
977 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]978
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]979 if (keylen > (size_t) ctx->md_info->block_size) {
980 if ((ret = mbedtls_md_starts(ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]981 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]982 }
983 if ((ret = mbedtls_md_update(ctx, key, keylen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]984 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]985 }
986 if ((ret = mbedtls_md_finish(ctx, sum)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]987 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]988 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]989
990 keylen = ctx->md_info->size;
991 key = sum;
992 }
993
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]994 ipad = (unsigned char *) ctx->hmac_ctx;
995 opad = (unsigned char *) ctx->hmac_ctx + ctx->md_info->block_size;
996
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]997 memset(ipad, 0x36, ctx->md_info->block_size);
998 memset(opad, 0x5C, ctx->md_info->block_size);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]999
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1000 mbedtls_xor(ipad, ipad, key, keylen);
1001 mbedtls_xor(opad, opad, key, keylen);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1002
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1003 if ((ret = mbedtls_md_starts(ctx)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1004 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1005 }
1006 if ((ret = mbedtls_md_update(ctx, ipad,
1007 ctx->md_info->block_size)) != 0) {
Andres Amaya Garcia42e5e102017-07-20 16:27:03 +0100[diff] [blame]1008 goto cleanup;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1009 }
1010
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1011cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1012 mbedtls_platform_zeroize(sum, sizeof(sum));
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1013
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1014 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1015}
1016
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1017int mbedtls_md_hmac_update(mbedtls_md_context_t *ctx, const unsigned char *input, size_t ilen)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1018{
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1019 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
1020 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1021 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1022
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1023 return mbedtls_md_update(ctx, input, ilen);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1024}
1025
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1026int mbedtls_md_hmac_finish(mbedtls_md_context_t *ctx, unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1027{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]1028 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1029 unsigned char tmp[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]1030 unsigned char *opad;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1031
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1032 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
1033 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1034 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1035
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]1036 opad = (unsigned char *) ctx->hmac_ctx + ctx->md_info->block_size;
1037
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1038 if ((ret = mbedtls_md_finish(ctx, tmp)) != 0) {
1039 return ret;
1040 }
1041 if ((ret = mbedtls_md_starts(ctx)) != 0) {
1042 return ret;
1043 }
1044 if ((ret = mbedtls_md_update(ctx, opad,
1045 ctx->md_info->block_size)) != 0) {
1046 return ret;
1047 }
1048 if ((ret = mbedtls_md_update(ctx, tmp,
1049 ctx->md_info->size)) != 0) {
1050 return ret;
1051 }
1052 return mbedtls_md_finish(ctx, output);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1053}
1054
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1055int mbedtls_md_hmac_reset(mbedtls_md_context_t *ctx)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1056{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]1057 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]1058 unsigned char *ipad;
1059
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1060 if (ctx == NULL || ctx->md_info == NULL || ctx->hmac_ctx == NULL) {
1061 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1062 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1063
Manuel Pégourié-Gonnarddfb3dc82015-03-25 11:49:07 +0100[diff] [blame]1064 ipad = (unsigned char *) ctx->hmac_ctx;
1065
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1066 if ((ret = mbedtls_md_starts(ctx)) != 0) {
1067 return ret;
1068 }
1069 return mbedtls_md_update(ctx, ipad, ctx->md_info->block_size);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1070}
1071
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1072int mbedtls_md_hmac(const mbedtls_md_info_t *md_info,
1073 const unsigned char *key, size_t keylen,
1074 const unsigned char *input, size_t ilen,
1075 unsigned char *output)
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1076{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1077 mbedtls_md_context_t ctx;
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]1078 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1079
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1080 if (md_info == NULL) {
1081 return MBEDTLS_ERR_MD_BAD_INPUT_DATA;
1082 }
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1083
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1084 mbedtls_md_init(&ctx);
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1085
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1086 if ((ret = mbedtls_md_setup(&ctx, md_info, 1)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1087 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1088 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1089
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1090 if ((ret = mbedtls_md_hmac_starts(&ctx, key, keylen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1091 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1092 }
1093 if ((ret = mbedtls_md_hmac_update(&ctx, input, ilen)) != 0) {
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1094 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1095 }
1096 if ((ret = mbedtls_md_hmac_finish(&ctx, output)) != 0) {
Andres Amaya Garciaaa464ef2017-07-21 14:21:53 +0100[diff] [blame]1097 goto cleanup;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1098 }
Manuel Pégourié-Gonnard8379a822015-03-24 16:48:22 +0100[diff] [blame]1099
Andres Amaya Garcia0dd4fa02017-06-28 14:16:07 +0100[diff] [blame]1100cleanup:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1101 mbedtls_md_free(&ctx);
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1102
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]1103 return ret;
Paul Bakker17373852011-01-06 14:20:01 +0000[diff] [blame]1104}
1105
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1106#endif /* MBEDTLS_MD_C */
Manuel Pégourié-Gonnardb9b630d2023-02-16 19:07:31 +0100[diff] [blame]1107
1108#endif /* MBEDTLS_MD_LIGHT */